CVE-2013-7417 in IPCopИнформация

Сводка

по MITRE

Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop Firewall) before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING. NOTE: this can be used to bypass the cross-site request forgery (CSRF) protection mechanism by setting the Referer.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Резервировать

02.01.2015

Раскрытие

02.01.2015

Модерация

принято

Вход

VDB-68468

EPSS

0.01343

KEV

Нет

Деятельности

Очень низкий

Источники

Interested in the pricing of exploits?

See the underground prices here!